This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.

Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!

An ongoing ransomware campaign is hitting Eastern European countries with what seems to be a variant of the Petya ransomware dubbed Bad Rabbit. Initial reports peg the main casualties as transport systems and media outlets in Ukraine and Russia.

Security researchers have spotted a new Android banking trojan named LokiBot that turns into ransomware and locks users’ phones when they try to remove its admin privileges. Just like similar Android banking trojans, LokiBot works by showing fake login screens on top of popular apps.

Intelligent transportation systems (ITS) are growing rapidly around the world, which also means threat actors will be looking for ways to exploit them. In anticipation of this new attack surface, Trend Micro researchers have modeled the greatest threats that could impact ITS.

House lawmakers on Tuesday passed legislation aimed at guarding U.S. ports from cyberattacks. The legislation instructs the Department of Homeland Security to take steps to boost cyber information sharing and coordination at U.S. ports.

No one is safe from a cyberattack, not even elementary school children. Recently, a hacking group named “The Dark Overlord,” known for hacking Netflix, has been linked to a series of attacks on school districts in three different states reports CNN.

The U.K. Financial Conduct Authority opened an investigation into the hack of credit reporting company Equifax that saw personal data stolen from at least 143 million people. The British regulator said it was probing the circumstances surrounding the hack that also led to the loss of U.K. customer information.

FirstHealth of the Carolinas announced on its website that a new version of the WannaCry malware strain forced the organization to shut down its information system network. An anti-virus patch was developed for the virus specifically and is being implemented throughout FirstHealth’s system.

Hackers are continuing to attempt to gain access to the networks of nuclear power companies and others involved with critical national infrastructure, raising concerns about cyber-espionage and sabotage.

Fileless malware has been used more recently to bypass traditional file scanning technology and lie undetected within infected machines. Although this type of strain might not be as well covered as other flashy strains, fileless malware is a hidden threat that should concern businesses.

3D printing is on the verge of mainstream adoption, which will mean a fundamental shift in manufacturing. The driving force is not improvements to the technology, although those are also important, but rather a transformation in the industry’s business model.

The need for more technologists with cybersecurity skills is undeniable. That may be an awkward way to phrase it, but it’s a better representation than “cybersecurity professionals.” In today’s world, everyone who works on and with technology needs to be aware of cybersecurity challenges.